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SYSTEM AND METHOD FOR UPDATING ENCRYPTION KEY FOR WIRELESS LAN 

FIELD OF THE INVENTION 

This invention relates to a wireless LAN system for 
5 wireless (or radio) communication on data encryption. More 
particularly, it relates to a system and a method for encrypted 
key updating in a wireless LAN system employing encryption by a 
WEP mechanism. 

BACKGROUND OF THE INVENTION 

10 Up to now, protection of communication data, that is 

security in wireless accessing, has been desired with the coming 
into widespread use of the wireless LAN system. 

Recently, introduction of the wireless LAN system is going 
on not only for outdoor use but also for indoor use. For example, 

15T there are many instances in which an access point (AP or fixed 
base station) is installed in precincts and 
transmission/reception devices or access terminal devices 
termed generally "station" (STA) are connected to terminal 
devices provided on a floor to provide a wireless route 

20 connecting to the AP to provide for facilitated positional 
change of the terminal devices aswell as to improve convenience 
in carrying out of doors and returning of portable terminal 
dev i ces. 

In such a system, communication data needs to be protected 
25 against the portable wireless terminal devices carried by a 
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visitor from outside or against external wireless terminal 
devices that is able to intercept electrical waves tending to 
leak to an outdoor side. 

As a data protection system in wireless communication, one 
5 exploiting encryption is becoming widespread. In the 
encryption system in the wireless communication system, 
researches for standardization have so far been conducted by 
IEEE. 

At the current stage, the shared key encryption (common 
10 key) system, employing the WEP (Wired Equivalent Privacy 
algorithm) mechanism is adopted in IEEE 802. 1 1 as an encryption 
and authentication system for the wireless section (or domain). 

Fig. 6a is a block diagram showing an encryption 
(enc i pherment) system by the WEP mechanism as described in 
f5 chapter 8.2.3 of IEEE 802.1 1, and Fig. 6b is a block diagram 
similarly showing a deencryption (decipherment) system. 

Referring to Fig. 6a, the encryption system by the WEP 
mechanism is made up of a seed generating unit 601, encryption 
unit 602, error detection code generating unit (Integrity 
20 Algorithm) 603, error detection code appending unit 604 and 
ciphered text generating processing unit 605, and outputs an 
encrypted message 606. The encryption unit 602 is constituted 
by an RC4 algorithm. 

The operation of Fig. 6a is described in IEEE 802.11 draft 
25 and hence is not explained specifically. The encipherment 
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system of Fig. 6a is fed with an initialization vector (IV), a 
secret key and communication data (Plaintext) and outputs a 
ciphered text (C i pher text) . 

The decipherment system by the WEP mechanism, shown in 
5 Fig. 6b, i s made up of seed generat i ng means 61 1 , enc r yp t i on un i t 
612, deencrypt ion process i ng un i t 61 3, code separation unit 614, 
error detection code generating unit 615 and error detection 
code comparator 616. The encryption unit 612 is comprised of an 
RC4 a I gor i thm. 

1Q The decipherment system of Fig. 6b is fed with IV and the 

ciphered text from the received encrypted message (Ciphertext) 
606 and performs decipherment processing using a memorized 
encrypted key. As a result, the deciphered plain text 
(Plaintext) and the results of comparison of the error detection 

15 code termed "Integrity Check Value" (ICV) are output. 

Fig. 7 shows a frame structure of the encrypted message 
(Ciphertext) 606, transmitted from Fig. 6a to Fig. 6b. The 
structure of the encrypted message 606 is termed an Expanded WEP 
Frame Body. In Fig. 7, the numeral entered in each component 

20 element is based on octets (octet-unit), that is eight bits, 
referred to below as bytes. The expanded WEP frame body is made 
up of a 4-byte IV field 701, a data field of not less than 1 byte 
(PDU) 702 and a 4-byte ICV field 703. The data field 702 and the 
ICV field 703 of the expanded WEP frame body are encrypted, 

25 whilst the IV field 701 is transmitted without encryption. 
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The IV field 701 contains the discrimination information 
for the encrypted key used in encryption. That is, the IV field 
701 is made up of a 3-byte initializing vector field 704, as a 
main body portion, and a 1-byte information field 707, composed 
5 of a 6-bit pad field (Pad) 705 and a 2 bit key ID field (Key ID) 
706. 

Since this key is made up of 2-bit information, up to four 
encrypted keys can be discriminated. So, up to four encrypted 
keys can be discriminated and managed in the encipherment system 
10 employing the WEP mechanism of IEEE 802.11. 

Meanwhi le, a variety of encryption communication apparatus 
or the encryption communication devices used in this sort of the 
wireless communication have been proposed. 

For example, in the JP Patent Kokai J P- A- 11 -1 960 81, there 
15 is disclosed a technique of updating an encrypted key appl icable 
to the encryption communication system comprising a 
transmitting station and a receiving station, according to the 
technique of this JP Patent Kokai J P-A- 11-1 96081, the sequence 
of operations of the data communication by encryption is as 
20 follows: 

First, a spare key is generated on the transmitting side. 
A spare key is transmitted by a message encrypted on the 
transmitting side using an encrypted key. The spare key is 
updated as encrypted key on both the transmitting and receiving 
25 sides and subsequently used for encryption and deencryption to 
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execute data communication. 

The structure for executing this method has three features, 
namely (1) provision of storage means for the spare key, (2) 
provision of storage means for the encrypted key and (3) 
5 generation of the spare key by a transmitting station. 
SUMMARY OF THE DISCLOSURE 

Meanwhile, in the conventional encryption communication 
system, described above, key management is on the one-to-one 
basis, to render application to a one-to- multiplicity system 
16 diff icul t by itself. 

On the other hand, in case of application to a system 
I' furnishing a wireless accessing environment between many STAs 
and AP, the AP superv i ses a key used on access i ng many term i na I s. 
Forexample, i n a s ys t em hav i ng n STAs, the AP i s i n need of means 
15: for storing and supervising n encrypted keys, the circuit scale 
is increased, while the load imposed on the AP in processing is 
i ncreased. 

If, as a resu 1 1 of movement of a por tab I e STA, e.g., carried 
by the user or displacement of the STA, e.g., by floor layout 
20 change, an AP different from an AP so far accessed is now to be 
accessed, the encrypted key stored and supervised by the STA 
ceases to be coincident with that stored and supervised by the AP, 
thus disabling the communication. 

If the subject-matter of the JP Patent Kokai J P-A- 1 1-1 96081 
25 is to be applied to a one-to-multiplicity system, such an 



operational sequence may be envisioned in which the AP delivers 
a spare key to each STA and, after the spare keys have been 
delivered to the STAs in their entirety, the spare keys so 
delivered are updated as the encrypted keys. However, if, when 
5 it is attempted to update the encrypted key by this sequence of 
operations, the STAs in their entirety are not necessarily 
accessing the AP at all times, it may be an occurrence that the 
delivered spare key cannot be updated to a new encrypted key. 
It is therefore an object of the present invention 
10 according to an aspect thereof to provide an encryption 
communication device which may be applied to an encryption 
communication system implemented between a number of STAs and an 
AP. 

It is another object of the present invention according to 
15 another aspect thereof to provide an encryption communication 
system between a plurality of STAs and an AP that is able to 
generate and supervise an encrypted key readily. 

It is a further object of the present invention according to 
a further aspect thereof according to a further aspect thereof to 
20 provide an encryption communication system in which, if a 
portable STA is moved, or a STA is transferred, such that an AP 
different from that accessed so far is to be accessed, the new AP 
can be accessed unob j ect i onab I y. 

It is a still further object of the present invention 
25 according to a still further aspect thereof to provide an 
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encryption communication system in which, even if the totality 
of the STAs belonging to a system cannot access the AP, an 
encrypted key is incidentally updated to secure the reliability 
of the encrypted communication, and in which there is provided a 
sequence of operations for encrypted key updating for the STA, 
the encrypted key of which has not been updated, to furnish an 
encryption communication system having a high management 
ef f i c i ency. 

For accomplishing the above object, the present invention 
provides a key management server (SV) device LAN-connected to 
the APs. A set of plural (k) encrypted keys used for wireless 
communication between the entire APs and STAs is provided and 
managed mon i s t i ca I I y. The set is delivered to each of the APs 
and the STAs. 

The AP of the encrypted key updating system of the present 
invention has a k encrypted key storage unit and stores and 
supervises the encrypted key or keys del ivered thereto from a key 
management server to have reference to the delivered key to have 
encrypted communication with a STA or STAs. 

The STA of the encrypted key updating system of the present 
invention has a k encrypted key storage unit and stores and 
supervises an encrypted key (or keys) delivered thereto from a 
key management server through an AP to have reference to the 
delivered key to have encrypted communication with the AP. 

If the entire encrypted keys stored in the encrypted key 



storage unit are not coincident with the AP, the STA of the 
encrypted key updating system of the present invention demands 
the key management server to update the encrypted keys in lump 
through an AP. If the encrypted keys are delivered from the key 
management server in lump, the encrypted keys, stored and 
managed by the STA, are updated and referenced to perform 
encrypted communication with the AP. 

In the encrypted key updating method, according to the 
present invention, there is provided a key management server 
LAN-connected to one or more APs. A set of plural (k) encrypted 
keys used for wireless communication between the entire APs and 
STAs is provided and managed monistical ly for del ivery to each of 
the APs and the STAs. 

The AP of the encrypted key updating method of the present 
invention has a k encrypted key storage unit and stores and 
manages the encrypted keys delivered thereto from the key 
management server to have reference to the delivered keys to 
perform encrypted communication with the STA or STAs. 

The STA of the encrypted key updating method of the present 
invention has a k encrypted key storage unit and stores and 
manages the encrypted keys delivered thereto from the key 
management server through the AP (or APs) to have reference to 
the delivered keys to perform encrypted communication with the 
AP (or APs) . 

If the entire encrypted keys, stored in the encrypted key 



storage unit, are not coincident with the encrypted key provided 
on the AP (or APs) , the STA (or STAs) of the encrypted key 
updating method of the present invention demands the key 
management server through theAP (or APs) to update the encrypted 
keys in lump to reference to the updated keys to have encrypted 
communication with the AP (or APs). 

Specifically, there is provided, according to an aspect of 
the present invention, an updating system for an encrypted key 
for a wireless LAN in which one or more wireless access points 
(APs) are provided on a LAN, the APs being wirelessly connected 
to one or more wireless access terminal devices (STAs) and in 
which data is encrypted and transmitted between the AP or APs and 
the STA or STAs to effect communication (encrypted 
commun i cat i on) , 

the system comprising a key management server (SV) device; 

the key management server (SV) device, LAN-connected to the 
AP, comp rising: 

SV storage unit for holding k encrypted keys used in the 
encrypted communication between the AP or APs and the STA or STAs, 
where k is not less than 1, and 

an encrypted key generating unit generating the encrypted 
key and storing the generated encrypted key in the SV storage 
unit; 

the SV device generating the encrypted key in the encrypted 
key generating unit to store the generated encrypted key in the 
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SV storage unit, the SV device controlling the encrypted key 
generating unit to update the encrypted key stored in the SV 
storage unit to deliver the updated encrypted key to the AP and 
to the STA or STAs. 

Upon updating the encrypted key stored in the SV storage 
unit, the SV device generates and updates a sole encrypted key at 
a time by the encrypted key generating unit. 

Upon updating the encrypted key stored in the SV storage 
unit, the SV device generates a sole encrypted key at a time by 
the encrypted key generating unit and sequentially updates k 
encrypted keys stored in the SV storage unit one-by-one at a 
preset interval. 

The SV device sequentially updates (k - 1) of the k 
encrypted keys stored in the SV storage unit one-by-one at a 
preset first interval, the SV device updating the remainingone 
key at a second interval which is longer than that for the (k - 
1) encrypted keys. 

The AP may comprise an updating unit updating an nth 
encrypted key, stored and managed by the AP or APs, on reception 
of a delivered nth encrypted key updated by the SV device, where 
1 < n < k, and an encryption unit encrypting an encrypted key 
updating notification message, using an encrypted key other than 
the nth encrypted key, for advising the STA or STAs of that 
effect; 

the STA comprising a key generating unit generating an STA 
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encrypted key updating requesting message on reception of the 
encrypted key updating notification message from the AP and an 
encryption unit encrypting the STA encrypted key updating 
requesting message, using the same encrypted key as that used in 
the encrypted key updating notification message, to advise the 
AP of that effect ; 

the AP also comprising a transmission unit advising the SV 
device of the STA encrypted key updating request on reception of 
the STA encrypted key updating requesting message from the STA; 

the SV device also comprising a verification unit verifying 
whether or not an encrypted key may be delivered to the STA on 
reception of the STA encrypted key updating requesting message 
from the AP, and a delivery unit delivering to the AP the 
encrypted key addressed to the STA if it is verified that the 
encrypted key may be delivered to the STA. 

The AP may comprise an updating unit updating an nth 
encrypted key, stored and managed by the AP or APs, on reception 
of a delivered nth encrypted key updated by the SV, where 1 < n 
< k, and an encryption unit encrypting an encrypted key updating 
notification message, using an initially updated one of k 
encrypted keys stored and managed by the AP, to advise the STA of 
that effect; 

the STA comprising a generator unit generating an STA 
encrypted key updating requesting message on reception of the 
encrypted key updating notification message from the AP and an 
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encryption unit encrypting the STA encrypted key updating 
requesting message, using the same encrypted key as that used in 
the encrypted key updating notification message, to advise the 
AP of that effect ; 

the AP also comprising a transmission unit advising the SV 
device of the STA encrypted key updating request on reception of 
the STA encrypted key updating requesting message from the STA; 

the SV device also comprising a verification unit verifying 
whether or not an encrypted key may be delivered to the STA on 
reception of the STA encrypted key updating requesting message 
from the AP and a del ivery unit del ivering to the AP the encrypted 
key addressed to the STA if it is verified that the encrypted key 
may be delivered to the STA. 

The AP may comprise a generator unit generating an STA 
encrypted key delivery message on reception of an encrypted key 
addressed to the STA from the SV device, and 

an encryption unit encrypting the STA encrypted key 
delivery message, using an encrypted key other than the nth 
encrypted key, to advise the STA of that effect; 

the STA also comprising an updating unit updating an nth 
encrypted key stored and managed by the STA on reception of an nth 
encrypted key by the STA encrypted key del ivery message from the 
AP. 

The AP may comprise a generator unit generating an STA 
encrypted key delivery message on reception of an encrypted key 
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addressed to the STA from the SV device, and 

an encryption unit encrypting the STA encrypted key 
delivery message, using an initially updated one of k encrypted 
keys stored and managed by the AP, to advise the STA of that 
effect ; 

the STA also comprising an updating unit updating an nth 
encrypted key stored and managed by the STA on reception of an nth 
encrypted key by delivered the STA encrypted key delivery 
message from the AP. 

The STA may comprise means for notifying the AP of a lumped 
STA encrypted key updating requesting message on detection of a 
preset factor; 

the AP comprising means for notifying the SV device of the 
lumped STA encrypted key updating request on reception of the 
lumped STA encrypted key updating requesting message from the 
STA; 

the SV device comprising means for verifying whether or not 
the encrypted key addressed to the STA can be delivered in a lump 
to the STA on reception of the lumped STA encrypted key updating 
request from the AP, and 

means for delivering encrypted key addressed to the STA in 
lump to the AP if the verifying means has verified that the 
encrypted key can be delivered in a lump to the STA; 

the AP also comprising means for generating a lumped STA 
encrypted key delivery message on reception in lump of the 
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encrypted keys addressed to the STA from the SV device, and for 
notifying the STA of that effect; 

the STA also comprising means for updating the encrypted keys 
stored in the STA in lump on reception of the lumped STA encrypted 
key delivery message from the AP. 

According to a second aspect of the present invention, 
there is provided an updating method for an encrypted key for a 
wireless LAN. The method comprises: 

(a) providing one or more wireless access points (APs) 
provided on a LAN, the APs being wirelessly connected to one or 
more wireless access terminal devices (STAs) and in which data is 
encrypted and transmitted between the AP and the STA or STAs to 
effect communication termed as "encrypted communication", 

(b) generating, by a key management server (SV) device, 
LAN-connected to the AP, k encrypted keys, k being not less than 
1, used for encrypted communication between the AP and the STA or 
STAs, 

(c) storing and managing, by the SV device, the generated 
encrypted key, 

(d) updating the encrypted key under a preset condition, 

and 

(e) delivering the updated encrypted key to the AP and to 
the STA or STAs. 

The SV device in updating the k encrypted keys stored and 
managed by the SV may update the k encrypted keys at a rate of one 
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at a time. 

The SV device in updating the k encrypted keys stored and 
managed by the SV device sequentially may update the k encrypted 
keys at a rate of one at a preset time interval. 

The SV device may sequentially update (k - 1) of the k 
encrypted keys stored in and managed by the SV device one-by-one 
at a first preset interval, the SV device updating the remaining 
one key at a second interval longer than for the (k- 1) encrypted 
keys. 

The AP may have encrypted communication with the STA or STAs 
using an optional encrypted key other than the nth encrypted key 
stored in and managed by the AP, during a period of time since 
updating of the nth encrypted key stored in and managed by the AP 
until the encrypted key is updated next, where 1 < n < k. 

The APmay have encrypted communication with the STA or STAs, 
sequentially using (k - 1) encrypted keys, other than the nth 
encrypted key stored in and managed by the AP, during a period of 
time since updating of the nth encrypted key stored in and 
managed by the AP until next updating of encrypted key, where 1 
< n < k. 

The APmay have encrypted commun i cation with the STA or STAs, 
using an initially updated one of k encrypted keys stored in and 
managed by the AP. 

The STA or STAs may have encrypted communication with the AP, 
using an optional one of (k - 1) encrypted keys, other than the 
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nth encrypted key, stored in and managed by the STA or STAs. 

The STA or STAs may have communication with the AP, 
sequentially using (k - 1) encrypted keys, other than the nth 
encrypted key, stored in and managed by the STA or STAs. 

The STA or STAs have communication with the AP, using the 
last updated one of k encrypted keys stored in and managed by the 
STA or STAs. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Fig. 1 is a block diagram showing the structure of an 
embodiment of a wireless LAN system according to the present 
invention. 

F i g. 2 is a block diagram showing the structure of an AP 
according to the present invention. 

Fig. 3 is a block diagram showing the structure of an STA 
according to the present invention. 

Fig. 4 is a sequence chart for illustrating the sequence of 
encrypted key updating operations according to the present 
invention. 

Fig. 5 is a sequence chart for illustrating the sequence of 
encrypted key updating operations according to the present 
invention. 

F i g. 6 is a block diagram for illustrating an encipherment 
system in the conventional technique by WEP of IEEE 802.11. 

Fig. 7 is a block diagram for illustrating a decipherment 
system in the conventional technique by WEP of IEEE 802.11. 
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PREFERRED EMBODIMENTS OF THE INVENTION 

A preferred embodiment of the present invention is 
hereinafter explained with reference to the drawings. 

Fig. 1 is a block diagram shoving a structure of a wireless 
LAN system embodying the present invention. The wireless LAN 
system, embodying the present invention, shown in Fig. 1, is made 
up of a key management server 101, an access point AP 102, and a 
plurality of, herein m, access terminal devices (stations) STAs 
(#1STA103-1, #2STA103-2, ••• #mSTA1 03-m) . 

An AP 102 and a STA 103 are interconnected by a wireless LAN 
connect ion under I EEE 802. 1 1. 

The data communication between the STA (or STAs) and the AP 
(or APs) is performed by an encipherment system employing the WEP 
mechanism. In the encipherment system, each of the STAs and the 
APs memorizes and supervises four encrypted keys to effect 
encryption and decryption. 

In a wireless section between the AP 102 and the STA 103, the 
key management server 101 generates and supervises an encrypted 
key or keys used for encrypt i on. On generat ion of a new key, the 
key management server delivers it to the AP 102 and to the STAs 
103. 

When the encrypted key is del ivered from the key management 
server 101 to the AP 102, the latter updates an encrypted key used 
for communication with the STAs 103 to memorize and supervise the 
updated encrypted key as well as to advise the STAs 103 of the 
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updating of the encrypted key. 

The each of STAs 103 memorizes and supervises the encrypted 
key delivered from the key management server 101 through the AP 
102 and has communication with the AP using the encrypted key. 

F i g. 2 shows a block diagram showing a structure of the AP 
102. The AP 102, shown in Fig. 2, is made up of control unit 201, 
encrypted key setting unit 202, first key storage unit 203, 
second key storage unit 204, third key storage unit 205, fourth 
key storage unit 206, key selection unit 207, key ID generating 
unit 208, I V gene rating unit 209, plain text input unit 210, WEP 
encryption unit 211, ciphered text sending unit 212, ciphered 
text inputting unit 213, WEP decryption unit 214, plain text 
output unit 215 and a key ID extraction unit 216. 

It is noted that the WEP encryption unit 211 is configured 
in accordance with the encipherment system by WEPof IEEE 802. 11, 
explained with reference to Fig. 6a. On the other hand, the WEP 
decryption unit 214 is configured in accordance with the 
decipherment system by WEP of IEEE 802.11, explained with 
reference to F i g. 6b. 

The first to fourth key storage units 203 to 206, shown in 
Fig. 2, may be conf i gured by a buf f er termed Ml B, as s hown i n F i g. 1 . 
The M I B is a memory unit of high confidentiality which may be 
rewritten but cannot be read by the software. 

Meanwh ile, the encrypted key generating unit 200, shown in 
Fig. 2, is included in the key management server. 
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Fig. 3 shows a block diagram showing a structure of the STA 
103. The STA 103, shown in Fig. 3, is made up of control unit 301, 
encrypted key setting unit 302, first key storage unit 303, 
second key storage unit 304, third key storage unit 305, fourth 
key storage unit 306, key selection unit 307, key ID generating 
unit 308, IV generating unit 30 9, plain text input unit 310, WEP 
decrypting unit 311, ciphered text sending unit 312, ciphered 
text inputting unit 313, WEP decryption unit 314, plain text 
output unit 315 and a key ID extraction unit 316. Similarly to 
the key storage units, shown in Fig. 2, the first to fourth key 
storage units 303 to 306 may be each configured by an MIB. 

Figs. 4 and 5 show sequence charts i I lustrating the sequence 
of operations in updating the encrypted key in the wireless LAN 
system according to the present invention. 

Fig. 4 shows a routine operational sequence in updating the 
encrypted key. Specifically, F i g. 4 shows the operational 
sequence of delivering a new encrypted key to an AP and a STA for 
updating if, as the STA and the AP hold and supervise the same 
encrypted key, the key management server has generated such new 
encrypted key. 

Fig. 5 shows the sequence of operations in updating the 
encrypted key stored and supervised by the STA when none of the 
four encrypted keys memorized and managed by the STA and the AP 
is coincident. This operational sequence is an encrypted key 
updating sequence which is applied if the portable STA device is 
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carried outdoors for a long period and returned after the 
total ity of the encrypted keys on the AP side are updated, and if, 
in this state, it is attempted to access theAP, or if a given STA 
is left in an inoperative state for a long period and is operated 
after the totality of the encrypted keys on the AP side have been 
updated. 

First, the operation of updating the routine encrypted key 
is explained by referring to Figs. 4 and 1 through 3. 

If, in Fig. 4, the key management server has generated an 
optional key (n'th key) of the four encrypted keys, and has 
updated the n'th encrypted key, stored and managed in the key 
management server, by way of updating the n'th key, the key 
management server delivers the encrypted key to the AP (AP key 
delivery). 

On reception of the AP key, delivered by the key management 
server, the AP updates an n'th one of the four encrypted keys, 
memorized and managed in the AP (updating of the n'th key) to 
notify the STA of the updatingof the key to the STA (notification 
of the key updating). The encrypted key is not included in the 
key updating notification transmitted at this time to the STA. 

However, theAPencrypts the key updatingnotification message, 
using an encrypted key other than the n'th key. 

The following explanation is made with reference to F i g. 2 
on the assumption that the key ID of the encrypted key delivered 
from the key management server to the AP is "1" (n=1). 
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Referring to Fig. 2, the encrypted key generating unit 200 
on generation of a new encrypted key transmit same to the AP 
control unit 201 (del ivery of the AP key). The AP control unit 201 
transfers an encrypted key, delivered from the key management 
server and the key ID (1) to the encrypted key setting unit 202, 
which then stores the encrypted key received from the control 
unit in the first key storage unit 203 in associationwith the key 
ID to update the stored encrypted key. 

The control unit 201 then controls the plain text input unit 
210 and the key ID generating unit 208 to notify the STA of the 
updating of the key. The plain text input unit 210 generates a 
key updating notification message, under control bythecontrol 
unit, to enter the message to the WEP encryption unit 211. The 
key ID generating unit 208 generates an ID different from the ID 
of the updated key. It is assumed here that a key ID "2" is 
outputted, as an example. The key selection unit 207 selects 
the encrypted key memorized in the second key storage unit 204 to 
input the selected encrypted key to the WEP encryption unit 211. 
The IV (initial vector) generatingunit 209 generates an IV, with 
the key ID being set to 2, to input the generated IV to the WEP 
encryption unit 211. 

The WEP encryption unit 211 encrypts the key updating 
notification message, input from the plain text input unit 210, 
using the IV input from the IV generating unit 209 and the 
encrypted key input from the key selection unit 207. The 
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ciphered text sending unit 212 inputs the ciphered text and the 
IV, prepared by the WEP encryption unit 211, to construct the 
expanded WEP frame which is output to e.g., a transmission 
device. 

Referring to Fig. 4, the STA on reception of a notification 
on key updating from the AP requests the key management server to 
update the key through the AP. The key server is responsive 
thereto to check whether or not the STA is intrinsic (truly 
targeted) one. If the key server verifies that the delivery of 
the STA key is possible, the encrypted key is del ivered to the STA 
through the AP. On reception of the delivered STA key from the 
STA key, the STA memorizes and manages the new encrypted key. 

In the wireless LAN according to the present invention, the 
above-described procedure is used for the wireless section (or 
domain) between the STA (STAs) and the AP (APs) to assure higher 
safety. 

The operation of the STA requesting the updating of the key 
on reception of the key updating notification is explained with 
reference to F i g. 3. 

Referring to Fig. 3, the key updating notification from the 
AP is input to the ciphered text inputting unit 313 where it is 
divided into the IV and the ciphered text which are routed to the 
key ID extraction unit 316. The key ID extraction unit 316 
extracts the key ID in the IV to control the key selection unit 
307. 
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In the explanation on the operation in Fig. 2, the key ID is 
set to "2". So, the key selection unit 307 selects the second 
key storage un i t 304. The WEP decryption unit 314, fed with the 
second key, issued by the key selection unit 307, decryptes the 
key change notification message. The plain text output unit 315 
outputs the plain text decrypted by the WEP decryption unit 314. 

The control unit 301 refers to an output of the plain text 
output unit 315. On detection of the key updating notification, 
the control unit 301 returns a key updating request message. 
The control unit 301 refers to the key ID output by the key ID 
extraction unit 316 to transfer the key ID to the key ID 
generating unit 308, which then outputs the key ID "2" received 
from the control unit. The key selection unit 307 thus selects 
the second key storage unit. The IV generating unit 309 
generates an IV of the key ID "2". The control unit 301 also 
controls the plain text input unit 310 to generate the key 
updating request message. 

Using the IV, fed from the IV generating unit 309, and the 
encrypted key, fed from the key selection unit 307, the WEP 
encryption unit 311 encrypts the key updating request message 
fed from the plain text input unit 310. The ciphered text sending 
unit 312, fed with the ciphered text and the IV, prepared by the 
WEP encryption unit 311, constructs an expanded WEP frame, to 
output the constructed frame to e.g., the transmission device. 
The operation in which the AP, receiving the key updating 
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request message from the STA, sends a key updating request 
message to the key management server to send the STA key del ivery 
from the key management server to the STA, is explained with 
reference to Fig. 2. 

In Fig. 2, the key updating request message from the STA is 
input to the ciphered text inputting unit 213 where it is divided 
(separated) into the IV and the ciphered text which are routed to 
the WEP decryption unit 214. The WEP decryption unit 214 
outputs the input IV to the key I D ext ract i on un i t 21 6, which then 
extracts the key ID in the IV to control the key selection unit 
207. 

Since the key ID sent out by the STA is "2", the key 
selection unit 207 selects the second key storage unit 204. 
The WEP decryption unit 214, fed with the second key, output by 
the key selection unit 207, decodes the key change request 
message. The plain text output unit 215 outputs the plain text 
decoded by the WEP decryption unit 214. 

The control unit 201 references an output of the plain text 
output un i t 21 5. On detect i on of the key updat i ng r eques t, the 
control unit 201 sends out a key updating request message to the 
key management server. 

The key updating request message, issued by the STA, 
includes the information proper to the STA. This information is 
referred to in order for the key management server to verify 
whether or not the key can be delivered. That is, the STA sends 
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out the MAC address of the STA, the identification information of 
the STA user and the password, contained as the intrinsic 
information in the key updating request message. 

The key management server compares the intrinsic 
information from the STA to an intrinsic information previously 
registered in connection with the STA. The key management 
server delivers the encrypted key to the STA only when it is 
confirmed that the STA as the sender of the key updating request 
message as received is an intrinsic one. 

Referring to Fig. 2, the encrypted key generating unit 200 
owned by the key management server delivers the encrypted key 
addressed to the STA to the control unit 201 of the AP (STA key 
delivery). The control unit 201 of the AP inputs the STA key 
delivery message, delivered from the key management server, to 
the plain text input unit 210. The encrypted key generating unit 
200 then controls the key ID generating unit 208 to deliver the 
encrypted key to the STA. The plain text input unit 210 inputs 
the STA key delivery message from the control unit to the WEP 
encryption unit 211. The key ID generating unit 208 outputs the 
key ID "2". The key selection unit 207 selects the encrypted key 
stored in the second key storage unit 204 to input the selected 
key to the WEP encryption unit 211. The IV generating unit 209 
generates an IV with the key ID set to 2 to send the generated IV 
to the WEP encrypt i on unit 211. 

The WEP encryption unit 211 encrypts the STA key delivery 
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message, input from the plain text input unit 210, using the IV 
input from the IV generating unit 209 and from the key selection 
unit 207. The ciphered text sending unit 212 is fed with the 
ciphered text and with the IV, prepared by the WEP encryption 
unit 211, to construct the expanded WEP frame, to output the 
constructed expanded WEP frame to e.g., a transmission device. 

Referring to Fig. 3, the operation of the STA receiving the 
STA key delivery message to update the encrypted key is 
hereinafter exp I a i ned. 

Referring to Fig. 3, an STA key del ivery message from the AP 
is input to the ciphered text inputting unit 313 where it is 
divided into an IV and a ciphered text both of which are input to 
WEP decryption unit 314. This WEP decryption unit outputs the 
input IV to the key ID extraction unit 316, which then takes out 
a key ID in the IV to control the key selection unit 307. 

The key selection unit 307 selects the second key storage 
unit 304 in accordance with the key ID. The WEP decryption unit 
314 is input to the second key output by the key selection unit 
307 to decode the STA key delivery message. The plain text 
output unit 315 outputs the plain text decoded by the WEP 
decryption unit 314. 

The control unit 301 references the output of the plain text 
output unit 315 and, on detection of the STA key del ivery message, 
transfers the received STA key to encrypted key setting unit 302. 
This encrypted key setting unit references the ID of the 
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del ivered encrypted key to store the ID in associated key storage 
unit to update the encrypted key. In the present embodiment, 
the first key is updated, so that the key ID "1" is contained in 
the p I a i n text. So, the new encrypted key i s stored i n the f i rst 
key s torage unit 303. 

By the above-described operations, the encrypted key 
generated by the key management server can be del ivered to the AP 
and to the STA to update the encrypted keys stored and supervised 
thereby. 

The management of the encrypted key (keys) for a large 
number of STAs and plural APs is now explained. 

In the wireless LAN system, according to the present 
invention, there are occasions wherein plural APs are connected 
to a key management server. It may be an occurrence that the 
STAs belonging to a system accesses to an AP different from a 
previous AP due to change in the floor layout or due to movement 
of the portable STA. In this consideration, in order to allow 
for facilitated management of the encrypted keys of a large 
number of STAs in addition to those of the plural APs, the key 
management server of the wireless LAN of the present invention 
uses a set of encrypted keys {four keys), common to the entire 
system, as the encrypted key to be delivered to each AP and to 
each STA. By so doing, the number of the encrypted keys managed 
can be minimized to diminish the load otherwise placed on the 
system. If the STA is moved across plural APs, occurrence of 
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non-coincidence of the encrypted keys can be evaded since the 
same encrypted keys are owned by the respective APs. 

The updating of the encrypted keys and management of the 
encrypted keys in the STAs and in the APs in the wireless LAN of 
the present invention are hereinafter explained. 

In the WEP of IEEE 802.11, the four encrypted keys can be 
discriminated for management and supervision. In the wireless 
LAN system of the present invention, several methods, as now 
explained, are adopted in connection with the updating of the 
encrypted keys in case of communication of the APs and the STAs 
to provide for compatibility of high management performance and 
high information confidentiality. 

As a first exemplary encrypted key updating method, the key 
management server sequentially updates the four encrypted keys 
one-by-one each time a preset time period has elapsed. 
Specifically, encrypted key updating is performed at a rate of 
one encrypted key, e.g., per week. By so doing, the respective 
encrypted keys are updated once every four weeks. Therefore, a 
person carrying a portable STA outwards can access to the AP (or 
APs) unobject ionably if the STA is returned within four weeks. 

The length of this time period can be set by the key 
management server to, for example, one day or to one month, 
depending on system requirements. 

In a system which updates the encrypted keys as described 
above, the STAs and the APs manage the encrypted key in one of the 
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following several methods. 

In one of these methods, the AP (or APs) communicates with 
the STA (or STAs) with the use not of the last updated one of the 
four encrypted keys, but with the use sequentially of the three 
remaining encrypted keys, for communication. 

In a system where there are present plural STAs, the 
updating of the encrypted keys, stored and supervised by the 
entire STAs, is time-consuming. That is, the encrypted key is 
updated individually from the key management server to each of 
the APs and STAs, such that, when an AP has updated one of the 
encrypted keys, each STA is responsive to an encrypted key 
updating notification from the AP to sequentially request the 
key management server to update its encrypted keys to have a key 
delivered thereto from the key management server to update the 
encrypted key i nd i v i dua I I y. 

By employing this method, it is possible to evade troubles 
ascribable to the non-coincidence of the encrypted key since 
updatingofasoleencryptedkeyof the AP unti I completionof the 
updating of the encrypted keys stored and managed by the entire 
STAs. 

In another method, the APs communicate with the STAs using 
the initially updated encrypted key. 

By so doing, the STAs are able to acquire the chance of 
updating of the encrypted key for a longer time duration. 

In the above-described first and second methods for 
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updating the first encrypted key, the STAs communicate with the 
last updated one of the encrypted keys stored and managed thereby. 
In this manner, the possible time of carrying the portable STA 
outwards or the time during which the STA can remain inoperative 
can be max i m i zed. On the other hand, an encrypted key other than 
the last updated encrypted key may optionally be used for 
improving the information confidentiality. 

As the second encrypted key updating method, the key 
management server sets the updating period of a specified 
encrypted key so as to be (e.g., significantly) I onge r t nan t ha t 
of other encrypted keys, so that the key management server 
sequentially updates the other encrypted keys with a shorter 
updating period. Specifically, the first encrypted key is 
updated every three months, whilst the second to fourth 
encrypted keys are updated every day. By so doing, a person 
carrying the portable STA outdoors or outwards is able to access 
to the AP unobjectionably if the STA is returned within three 
months, thus improving the convenience. Since the other three 
encrypted keys are updated every three days, these encrypted 
keys can be used for communication to improve the information 
conf i den t i a I i ty. 

With this method, the encrypted key updating period can be 
optionally set depending on system requirements. 

With the system updating the encrypted key in the manner 
described above, the STA and the AP are able to use the encrypted 
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keys by any one of the following several methods. 

With the first method, the AP has communication with the ST A, 
using the encrypted keys, updated at a period of three days. If 
the STA, holding and supervising an encrypted key coincident 
with the AP, has communication using the encrypted keys updated 
at a period of three days, it is possible to maintain high 
information confidentiality in the communication between the 
STA and the AP. However, if the STA is carried outwards for more 
than three days and subsequently returned to access the AP, or if 
the STA remains inoperative for more than three days and again is 
in operation to access the AP, the encrypted key non-coincidence 
occurs, in which case the AP has communication with the STA by the 
second method. 

With the second method, if the encrypted key of the message 
from the STA is not coincident with that stored and managed by the 
AP, the I at ter at tempts to have commun i cat i on wi th the STA, using 
the encrypted key updated every three months. If the encrypted 
key coincidence is achieved by this method, the AP advises the 
STA of the updating of the encrypted key. The STA thus raises a 
demand for updating the encrypted key and has the latest 
encrypted key del ivered from the key management server so that it 
is now possible to update the encrypted key. 

Meanwhile, if the above-mentioned second encrypted key 
updating method is used, the encrypted keys in their entirety 
become non-coincident in case of prolonged carrying outwards of 
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theSTAor non-operationof the STA for longer than three months. 

The operation of updating the encrypted key in such case is 
explained by referring to Fig. 5. 

Referring to Fig. 5, an STA not having an encrypted key 
coincident with that of the AP demands an access to the AP, 
sequential ly using encrypted keys, stored and managed by the STA, 
beginning from the first key (first accessing demand). Since the 
encrypted key is not coincident, the AP notifies key non- 
coincidence, using a plain text (first key NG notification). 

If the non-coincident of the encrypted key repeatedly 
occurs four times, the STA requests lumped key updating (first 
key NG notification). The AP transfers the lumped key updating 
demand from the STA to the key management server. The private 
information of the STA is contained in the lumped encrypted key 
updating request message, as in the case of the operation 
explained in connection with Fig. 4. 

The keymanagement server checks the private information of 
the STA. If the key management server verifies the checked 
private information to be intrinsic, it delivers the STA 
encrypted keys in a lump through the AP. On reception of the STA 
encrypted keys from the key management server in lump, the STA 
updates, in lump, the encrypted keys it has stored and managed. 

The STA then demands access to the AP, using a new encrypted 
key. The AP checks the encrypted key and, if it has verified the 
encrypted key to be coincident, it starts usual data 
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commun i cat i on. 

In Fig. 5, it is assumed that STA demands access four times 
for ease in understanding. However, a more efficient sequence 
may, of course, be contemplated. That is, such a sequence may be 
contemplated in which the STA uses the last updated one of the 
four encrypted keys, for the first access demand, and in which, 
if this encrypted key is non-coincident, the STA promptly 
demands lumped key updating. 

Meanwhile, in the sequence chart of Fig. 5, the wireless 
communication between the STA and the AP as from the lumped 
encrypted key updating request by the STA unti I lumped encrypted 
key delivery to the STA is to be in plain text. The reason is 
that, in Fig. 5, it is presupposed that separate encrypted 
commun ication including the wireless path between theAP and the 
STA is to be applied. 

That is, an open key e.g., is used in a domain from the key 
management server to the STA or in a domain from the AP to the STA, 
as shown in an upper part of Fig. 5, to use the encryption and 
decoding separate from the teaching of the present invention, to 
enable the encrypted key of the STA to be updated more safely in 
the sequence of F i g. 5. 

According to the present invention, it is possible to 
update the encrypted keys in a lump by the wireless LAN system, 
that is to update the encrypted keys without the manual operation 
of setting an encrypted key in the STA, even if the four encrypted 
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keys, stored and managed by the STA, cease to be coincident in 
their entirety with those of the A P. 

The meritorious effects of the present invention 
are summarized as follows. 

According to the present invention, as described above, 
there is provided a key management server device, LAN-connected 
to one or more AP. A set of k encrypted keys are used for 
encrypted wireless commun ication between the totality of the APs 
and the STAs and supervised in lump by the key management server 
device. In this manner, there is provided a one-for- 
multiplicity wireless LAN system where there is no risk of the 
circuit scale of the device increasing due to encrypted key 
management or of the processing load increasing for management 
of the encrypted keys 

Moreover, according to the present invention, there is 
provided a wireless LAN system in which, if, as a result of the 
portable STA being carried outwards by the user or of the STA 
being transferred due to e.g., floor layout change, an AP 
different from the previously accessed AP is to be accessed, 
there is no risk that the encrypted keys stored and managed 
becomes non-coincident between the STA and the AP accessed by the 
STA. 

Moreover, according to the present invention, there is 
provided a wireless LAN system of high management performance in 
which, if, as a resu 1 1 of a user car ry ing a portabl e STA outwards 
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for prolonged time, the STA encrypted key is not updated, such 
that, when the user returns the STA, the entire encrypted keys 
stored by the STA is non-coincident with the accessed AP, an 
encrypted key updating sequence for the STA may be provided, so 
that the encrypted key memorized by the STA can be updated 
without requiring complex accommodating operation by human 
intervention. 

It should be noted that other objects, features and aspects 
of the present invention will become apparent in the entire 
disclosure and that modifications may be done without departing 
the gist and scope of the present invention as disclosed herein 
and claimed as appended herewith. 

Also it should be noted that any combination of the 
disclosed and/or claimed elements, matters and/or items may fal I 
under the modifications aforementioned. 
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WHAT IS CLAIMED IS: 

1. An updating system for an encrypted key for a wireless LAN in 
which one or more wireless access points (APs) are provided on a 
LAN, said APs being wirelessly connected to one or more wireless 
access terminal devices (STAs) and inwhichdata is encrypted and 
5 transmitted between the AP or APs and the STA or STAs to effect 
communication (encrypted communication), 

sa i d sys t em compr i s i ng a key managemen t se rve r (SV) device; 

said key management server (SV) device, LAN-connected to 
the AP, compr i s i ng : 
10 SV storage unit for holding k encrypted keys used in the 

encrypted communication between said AP or APs and the STA or 
STAs, where k is not less than 1, and 

an encrypted key generating unit generating said encrypted 
key and storing the generated encrypted key in said SV storage 
15 unit; 

said SV device generating said encrypted key in said 
encrypted key generating unit to store the generated encrypted 
key in said SV storage unit, said SV device controlling said 
encrypted key generating unit to update said encrypted key 
20 stored in said SV storage unit to deliver the updated encrypted 
key to said AP and to said STA or STAs. 

2. The updating system for an encrypted key for a wireless LAN 
as defined in claim 1 wherein 

upon updating said encrypted key stored in said SV storage 
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unit, said SV device generates and updates a sole encrypted key 
at a time by said encrypted key generating unit. 

3. The updating system for an encrypted key for a wireless LAN 
as defined in claim 1 wherein 

upon updating said encrypted key stored in said SV storage 
unit, said SV device generates a sole encrypted key at a time by 
said encrypted key generating unit and sequentially updates k 
encrypted keys stored in said SV storage unit one-by-one at a 
preset i nterva I . 

4. The updating system for an encrypted key for a wireless LAN 
as defined in claim 1 

wherein 

said SV device sequentially updates (k - 1) of said k 
encrypted keys stored in said SV storage unit one-by-one at a 
preset first interval, said SV device updating the remainingone 
key at a second interval which is longer than that for said (k - 
1) encrypted keys. 

5. The updating system for an encrypted key for a wireless LAN 
as defined in claim 2 

where i n 

said AP comprises an updating unit updating an nth 
encrypted key, stored and managed by said AP or APs, on reception 
of a del ivered nth encrypted key updated by said SV device, where 
1 < n < k, and an encryption unit encrypting an encrypted key 
updating notification message, using an encrypted key other than 
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said nth encrypted key, for advising said STA or STAs of that 
effect; 

said STA comprising a key generating unit generating an STA 
encrypted key updating requesting message on reception of said 
encrypted key updating notification message from said AP and an 
encryption unit encrypting said STA encrypted key updating 
requesting message, using the same encrypted key as that used in 
said encrypted key updating notification message, to advise said 
AP of that effect ; 

said AP also comprising a transmission unit advising said 
SV device of the STA encrypted key updating request on reception 
of said STA encrypted key updating requesting message from said 
STA; 

said SV device also comprising a verification unit 
verifying whether or not an encrypted key may be delivered to 
said STA on reception of the STA encrypted key updating 
requesting message from said AP, and a delivery unit delivering 
to said AP the encrypted key addressed to said STA if it is 
verified that said encrypted key may be delivered to said STA. 
6. The updating system for an encrypted key for a wireless LAN as 
defined in claim 2 

wherein 

said AP comprises an updating unit updating an nth 
encrypted key, stored and managed by said AP or APs, on reception 
of a delivered nth encrypted key updated by said SV, where 1 < 
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n < k, and an encryption unit encrypting an encrypted key 
updat i ng not i f i cat i on message, using an initial I y updated one of 
k encrypted keys stored and managed by said AP, to advise said ST A 
of that effect; 

said STA comprising a generator unit generating an STA 
encrypted key updating requesting message on reception of sai 
encrypted key updating notification message from said AP and an 
encryption unit encrypting said STA encrypted key updating 
requesting message, using the same encrypted key as that used in 
said encrypted key updating notification message, to advise said 
AP of that effect ; 

said AP also comprising a transmission unit advising sail 
SV device of the STA encrypted key updating request on reception 
of said STA encrypted key updating requesting message from said 
STA; 

said SV device also comprising a verification unit 
verifying whether or not an encrypted key may be delivered to 
said STA on reception of the STA encrypted key updating 
requesting message from said AP and a del ivery unit del ivering to 
said AP the encrypted key addressed to said STA if it is verified 
that said encrypted key may be delivered to said STA. 
7. The updating system for an encrypted key for a wireless LAN 
as def i ned in claim 5 

wherein 

said AP comprises a generator unit generating an STA 
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encrypted key delivery message on reception of an encrypted key 
addressed to said STA from said SV device, and 

an encryption unit encrypting said STA encrypted key 
delivery message, using an encrypted key other than the nth 
encrypted key, to advise said STA of that effect; 

said STA also comprising an updating unit updating an nth 
encrypted key stored and managed by said STA on reception of an 
nth encrypted key by said STA encrypted key del ivery message from 
said AP. 

8. The updating system for an encrypted key for a wireless LAN 
as defined in claim 6 

wherein 

said AP comprises a generator unit generating an STA 
encrypted key delivery message on reception of an encrypted key 
addressed to said STA from said SV device, and 

an encryption unit encrypting said STA encrypted key 
delivery message, using an encrypted key other than the nth 
encrypted key, to advise said STA of that effect; 

said STA also comprising an updating unit updating an nth 
encrypted key stored and managed by said STA on reception of an 
nth encrypted key by said STA encrypted key del ivery message from 
said AP. 

9. The updating system for an encrypted key for a wireless LAN 
as defined in claim 5 

wherein 
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said AP comprises a generator unit generating an STA 
encrypted key delivery message on reception of an encrypted key 
addressed to said STA from said SV device, and 

an encryption unit encrypting said STA encrypted key 
delivery message, using an initially updated one of k encrypted 
keys stored and managed by said AP, to advise said STA of that 
effect; 

said STA also comprising an updating unit updating an nth 
encrypted key stored and managed by said STA on reception of an 
nth encrypted key by delivered said STA encrypted key delivery 
message from said AP. 

10. The updating system for an encrypted key for a wireless LAN 
as defined in claim 6 
wherein 

said AP comprises a generator unit generating an STA 
encrypted key delivery message on reception of an encrypted key 
addressed to said STA from said SV device, and 

an encryption unit encrypting said STA encrypted key 
delivery message, using an initially updated one of k encrypted 
keys stored and managed by said AP, to advise said STA of that 
effect; 

said STA also comprising an updating unit updating an nth 
encrypted key stored and managed by said STA on reception of an 
nth encrypted key by delivered said STA encrypted key delivery 
message from said AP. 



11. The updating system for an encrypted key for a wireless LAN 
as defined in claim 1 

wherein 

said STA comprises means for notifying the AP of a lumped 
5 STA encrypted key updating requesting message on detection of a 
preset factor; 

said AP comprisingmeans for notifying said SV device of the 
lumped STA encrypted key updating request on reception of said 
lumped STA encrypted key updating requesting message from said 
1 JO STA; 

said SV device comprising means for verifying whether or 
not the encrypted key addressed to said STA can be delivered in 
a lump to said STA on reception of said lumped STA encrypted key 
updating request from said AP, and 
15. means for delivering encrypted key addressed to said STA in 

lump to said AP if said verifying means has verified that the 
encrypted key can be delivered in a lump to said STA; 

said AP also comprising means for generating a lumped STA 
encrypted key delivery message on reception in lump of said 
20 enc rypted keys add ressed to sa i d STA f rom sa i d SV dev i ce, and for 
notifying said STA of that effect; 

said STA also comprising means for updating the encrypted 
keys stored in said STA in lump on reception of said lumped STA 
encrypted key delivery message from said AP. 

12. An updating method for an encrypted key for a wireless LAN 
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comp r i s i ng : 

(a) providing one or more wireless access points (APs) 
provided on a LAN, said APs being wirelessly connected to one or 

5 more wireless access terminal devices (STAs) and in which data is 
encrypted and transmitted between the AP and the STA or STAs to 
effect communication termed as "encrypted communication", 

(b) generating, by a key management server (SV) device, 
LAN-connectedtosaidAP, k encrypted keys, k being not less than 

10_ 1, used for encrypted communication between said AP and said STA 
or STAs, 

(c) storing and managing, by said SV device the generated 
encrypted key, 

(d) updating the encrypted key under a preset condition, 

1 ! and 

(e) delivering the updated encrypted key to said AP and to 
said STA or STAs. 

13. The updating method for an encrypted key for a wireless LAN 
as defined in claim 12 

wherein 

said SV device in updating said k encrypted keys stored and 
5 managed by said SV updates said k encrypted keys at a rate of one 
at a time. 

14. The updating method for an encrypted key for a wireless LAN 
as defined in claim 12 

where i n 
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said SV device in updating said k encrypted keys stored and 
managed by said SV device sequentially updates said k encrypted 
keys at a rate of one at a preset time interval. 

15. The updating method for an encrypted key for a wireless LAN 
as defined in claim 12 

where i n 

said SV device sequentially updates (k - 1) of said k 
encrypted keys stored in and managed by said SV device one-by- 
one at a first preset interval, said SV device updating the 
remaining one key at a second interval longer than for said (k - 
1) encrypted keys. 

16. The updating method for an encrypted key for a wireless LAN 
as defined in claim 13 

wherein 

said AP has encrypted communication with said STA or STAs 
using an optional encrypted key other than the nth encrypted key 
stored in and managed by said AP, during a period of time since 
updating of the nth encrypted key stored in and managed by said 
AP until the encrypted key is updated next, where 1 < n < k. 

17. The updating method for an encrypted key for a wireless LAN 
as defined in claim 13 

whe r e i n 

said AP has encrypted communication with said STA or STAs, 
sequentially using (k - 1) encrypted keys, other than the nth 
encrypted key stored in and managed by said AP, during a period 
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of time since updating of the nth encrypted key stored in and 
managed by said AP until next updating of encrypted key, where 1 
< n < k. 

18. The updating method for an encrypted key for a wireless LAN 
as defined in claim 13 

wherein 

said AP has encrypted communication with said STA or STAs, 
using an initially updated one of k encrypted keys stored in and 
managed by said AP. 

19. The updating method for an encrypted key for a wireless LAN 
as defined in claim 16 

whe r e i n 

said STA or STAs has/have encrypted communication with said 
AP, using an optional one of (k - 1) encrypted keys, other than 
the nth encrypted key, stored in and managed by said STA or STAs. 

20. The updating method for an encrypted key for a wireless LAN 
as defined in claim 16 

wherein 

said STA or STAs has/have communication with said AP, 
sequentially using (k - 1) encrypted keys, other than the nth 
encrypted key, stored in and managed by said STA or STAs. 

21. The updating method for an encrypted key for a wireless LAN 
as defined in claim 16 

wherein 

said STA or STAs has/have communication with said AP, using 
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the last updated one of k encrypted keys stored in and managed 
said STA or STAs. 
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ABSTRACT OF THE DISCLOSURE 
System for updating an encrypted key, by means of which the 
WEP of IEEE 802. 11 can be applied to a wireless LAN system having 
plural APs and a large number of STAs. A key management server 
is LAN-connected to the APs. A set of plural (k) encrypted keys 
used for wireless communication between the entire APs and STAs 
is provided and managed mon i s t i c a I I y. If an encrypted key is 
updated in the key management server, the updated key is 
delivered to each of the APs and the STAs. 
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